Abstract
A recent trend in cryptographic systems is to base their encryption/decryption functions on HP-complete problems, and in particular on the knapsack problem. To analyze the security of these systems, we need a complexity theory which is less worst-case oriented and which takes into account the extra conditions imposed on the problems to make them cryptographically useful. In this paper we consider the two classes of one-to-one and onto knapsack systems, analyze the complexity of recog-nizing them and of solving their instances, introduce a new complexity measure (median complexity), and show that this complexity is inversely proportional to the density of the knapsack system. The tradeoff result is based on a fast probabilistic knapsack solving algorithm which is applicable only to one-to-one systems, and it indicates that knapsack-based cryptographic systems in which one can both encrypt and sign messages are relatively insecure. We end the paper with new results about the security of some specific knapsack systems.
Cite
CITATION STYLE
Shamir, A. (1979). On the cryptocomplexity of knapsack systems. In Proceedings of the Annual ACM Symposium on Theory of Computing (pp. 118–129). Association for Computing Machinery. https://doi.org/10.1145/800135.804405
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
